Product - Sync. Files #81
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Synchronize common workflows and configuration across all product repositories | |
| name: Product - Sync. Files | |
| on: | |
| workflow_dispatch: | |
| schedule: | |
| - cron: 0 0 * * * | |
| jobs: | |
| file_sync: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Import GPG key | |
| shell: bash | |
| run: | | |
| echo "${{ secrets.GPG_PRIVATE_KEY }}" | gpg --batch --import | |
| KEY_ID=$(gpg --list-secret-keys --keyid-format LONG | grep 'sec' | awk '{print $2}' | cut -d'/' -f2) | |
| echo "KEY_ID=$KEY_ID" >> $GITHUB_ENV | |
| - name: Add the custom gpg siging program that passes the passphrase to the gpg CLI | |
| run: | | |
| rm -rf /tmp/gpg.sh | |
| echo '#!/bin/bash' >> /tmp/gpg.sh | |
| echo 'gpg --batch --pinentry-mode=loopback --passphrase "${{ secrets.GPG_PASSPHRASE }}" $@' >> /tmp/gpg.sh | |
| chmod +x /tmp/gpg.sh | |
| - name: Configure Git to use GPG key | |
| shell: bash | |
| run: | | |
| git config --global user.signingkey ${{ env.KEY_ID }} | |
| git config --global commit.gpgSign true | |
| git config --global user.name "Jahia Continuous Integration account" | |
| git config --global user.email "[email protected]" | |
| git config --global gpg.program /tmp/gpg.sh | |
| - uses: fgerthoffert/[email protected] | |
| with: | |
| github_token: ${{ secrets.GH_ISSUES_PRS_CHORES }} | |
| config_file: .github/product-file-sync-config.yml | |